Connect with us

Hi, what are you looking for?



IBM to Acquire Trusteer in Effort to Boost Anti-Cybercrime Capabilities

IBM announced on Thursday that it has agreed to acquire Trusteer, a Boston-based provider of cybercrime protection solutions for endpoints.

IBM announced on Thursday that it has agreed to acquire Trusteer, a Boston-based provider of cybercrime protection solutions for endpoints.

While the company’s products historically focused on endpoint security solutions to protect financial transactions, the company has expanded its product offerings with the launch of a solution to protect endpoints in the enterprise, and recently made its cybercrime prevention solution available for e-commerce operations.

According to Trusteer, seven of the top 10 U.S. banks and nine of the top 10 U.K. banks use its solutions to help secure customer accounts against financial fraud and cyber attacks.

Mike Rothman, Analyst and President at security advisory firm Securosis, thinks the deal is a win for both IBM and Trusteer.

“I think Trusteer has interesting technology that fills a big hole in IBM’s product line in terms of being able to deal with advanced malware,” Rothman told SecurityWeek.

Trusteer LogoIBM LogoThe acquisition of Trusteer brings a team of solid researchers to Big Blue as well. Trusteer’s researchers have been behind the discovery of many new cyber threats, mainly targeting the financial sector.

This past June, the company discovered a variant of the Citadel Trojan that utilizes regional-based HTML injects that match language and could focus on a specific domain. The company also uncovered details of an upgraded version of the Shylock financial malware that had new evasive capabilities and could detect if it was being observed within a remote desktop session or being executed locally. Last summer, the security firm discovered a type of attack that targeted Android users via their desktops, with the aim of controlling both endpoint devices.

In March, Trusteer announced a partnership with Russia-based Group-IB, a security incident response and research firm, to help financial institutions combat cybercrime.

While no security product is a silver bullet, Trusteer’s anti-cybercrime solutions have had enough success to be well known by cybercriminals, and more advanced malware authors are even incorporating and bragging about “Anti-Rapport” features designed specifically to circumvent Trusteer’s protection efforts.

Advertisement. Scroll to continue reading.

Just recently, RSA researchers uncovered “KINS”, a new professional-grade banking Trojan that could soon rival Zeus, SpyEye and Citadel in how effectively it spreads. The authors of that emerging malware are reportedly offering an Anti-Rapport module for a cool $2,000.

As part of the announcement, IBM said it was creating a cybersecurity software lab in Israel, where Trusteer also has a development office, that will combine more than 200 Trusteer and IBM researchers and developers to focus on advance and emerging security threats.

“Trusteer’s expertise and superior technology in enterprise endpoint defense and advanced malware prevention will help our clients across all industries address the constantly evolving threats they are facing,” said Brendan Hannigan, General Manager, Security Systems Division, IBM.

IBM says that Trusteer’s cloud-based solutions will complement IBM’s more than 100 Software as a Service (SaaS) solutions, and also help customers identify mobile threats.

While the terms of the transaction were not disclosed, some reports peg the deal at between $800 million to $1 billion, with Techcrunch citing a source saying it was the latter of the two.

“If those numbers are right, it’s a huge win for Trusteer,” Rothman said. “With very little [VC] money in there, those guys did a great job building out the company and finding a very interesting and innovative model,” Rothman said, noting that “IBM paid up because they need that capability to deal with advanced attacks.” 

Trusteer was founded in 2006 by Mickey Boodaei, Rakesh Loonkar, Amit Klein, Shmulik Regev, and Eldan Ben-Haim and is backed by U.S. Venture Partners and Shlomo Kramer.

*Updated with additional commentary and rumored sale price.
Written By

For more than 15 years, Mike Lennon has been closely monitoring the threat landscape and analyzing trends in the National Security and enterprise cybersecurity space. In his role at SecurityWeek, he oversees the editorial direction of the publication and is the Director of several leading security industry conferences around the world.

Click to comment


Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.


SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.


People on the Move

Professional services company Slalom has appointed Christopher Burger as its first CISO.

Allied Universal announced that Deanna Steele has joined the company as CIO for North America.

Former DoD CISO Jack Wilmer has been named CEO of defensive and offensive cyber solutions provider SIXGEN.

More People On The Move

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.


A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.


As it evolves, web3 will contain and increase all the security issues of web2 – and perhaps add a few more.

CISO Strategy

SecurityWeek spoke with more than 300 cybersecurity experts to see what is bubbling beneath the surface, and examine how those evolving threats will present...


Luxury retailer Neiman Marcus Group informed some customers last week that their online accounts had been breached by hackers.

CISO Conversations

Joanna Burkey, CISO at HP, and Kevin Cross, CISO at Dell, discuss how the role of a CISO is different for a multinational corporation...